Attacker Value

High

(2 users assessed)

Exploitability

High

(2 users assessed)

User Interaction

Unknown

Privileges Required

Unknown

Attack Vector

Unknown

CVE-2022-30174

Disclosure Date: June 15, 2022 •

CVE-2022-30174

MITRE ATT&CK

Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Privilege Escalation

Techniques

Validation

Abuse Elevation Control Mechanism: Bypass User Access Control

Validated

Abuse Elevation Control Mechanism: Elevated Execution with Prompt

Validated

Hijack Execution Flow

Validated

Hijack Execution Flow: DLL Search Order Hijacking

Validated

Hijack Execution Flow: DLL Side-Loading

Validated

Hijack Execution Flow: Executable Installer File Permissions Weakness

Validated

Description

Microsoft Office Remote Code Execution Vulnerability

Add Assessment

AzyzChayeb (2)

August 22, 2022 1:58pm UTC (2 years ago)

Ratings

Attacker Value

Very High

Exploitability

Very High

Difficult to patch Requires user interaction

See More &1 replySee Less

AzyzChayeb (2) August 22, 2022 1:59pm UTC (2 years ago)•Edited 2 years ago

nu11secur1ty (198)

June 25, 2022 4:56am UTC (2 years ago)•Edited 2 years ago

Ratings

Attacker Value

Medium

Exploitability

Medium

Difficult to patch Gives privileged access Vulnerable in default configuration Vulnerable in uncommon configuration

Technical Analysis

CVE-2022-30174

Description:

Microsoft Office Remote Code Execution Vulnerability.
This attack requires a specially crafted file to be placed either in an online directory or in a local network location.
When a victim runs this file, it loads the malicious DLL or EXE file.

WARNING:

Use your Windows Defender turned on and update him regularly!!!

Conclusion:

- So. I’ve decided to test this stupid and forever stupid thing MS Office 365 which is from 7 maybe 10 years just like that. Some things will never change.
Tested on Windows 11.
365 don’t give a f*** what you give him to execute, it depends on the lure…
For the usual users: If you don’t have some virus protection software, you are lost…😯 😝 🤫 😛 😎
STATUS: Medium vulnerability but it is there! Watch out, dear friends! 😎

Proof and Exploit:

href

CVSS V3 Severity and Metrics

Data provided by the National Vulnerability Database (NVD)

Base Score:

None

Impact Score:

Unknown

Exploitability Score:

Unknown

Vector:

Unknown

Attack Vector (AV):

Unknown

Attack Complexity (AC):

Unknown

Privileges Required (PR):

Unknown

User Interaction (UI):

Unknown

Scope (S):

Unknown

Confidentiality (C):

Unknown

Integrity (I):

Unknown

Availability (A):

Unknown

Vendors

microsoft

Products

365 apps -,
office long term servicing channel 2021

References

Canonical

CVE-2022-30174 (https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2022-30174)

Miscellaneous

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2022-30174

https://github.com/nu11secur1ty/CVE-mitre/tree/main/2022/CVE-2022-30174

https://www.nu11secur1ty.com/2022/06/cve-2022-30174.html

Rapid7

High

CVE-2022-30174

High

High

Unknown

Unknown

Unknown

CVE-2022-30174

Description

Add Assessment

Ratings

Ratings

Technical Analysis

CVE-2022-30174

Description:

WARNING:

Conclusion:

Proof and Exploit:

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

High

CVE-2022-30174

High

High

Unknown

Unknown

Unknown

CVE-2022-30174

Description

Add Assessment

Ratings

Ratings

Technical Analysis

CVE-2022-30174

Description:

WARNING:

Conclusion:

Proof and Exploit:

CVSS V3 Severity and Metrics

General Information

Vendors

Products

References

Canonical

Miscellaneous

Additional Info

Technical Analysis

Quick Cookie Notification